Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A digital advertising system comprising: at least one processor; at least one memory comprising a policy file comprising a tag hierarchy; and a message routing hub to route digital messages between a requesting component and a responding component in the digital advertising system; a message handler to receive the digital messages from the routing hub as the digital messages are routed between the requesting component and the responding component; and a policy enforcement module comprising logic to read the policy file from the at least one memory and to configure the at least one processor to modify the digital messages according to the content of the policy file, to thus reconfigure the message handler to dynamically control data access between the requesting component and responding component as follows: a. on condition that the policy file includes a distinct section on target code addition, configuring the message handler to add first target codes to the messages as specified by the section on target code addition; b. on condition that the policy file includes a distinct section on target code removal, configuring the message handler to remove from the messages second target codes specified by the section on target code removal; c. on condition that the policy file includes a distinct section on target code replacement, configuring the message handler to replace in the messages target code replacements specified by the section on target code replacement; and d. on condition that the policy file includes a distinct section on target code regular expressions, configuring the message handler to apply the regular expressions to target codes in the messages; wherein the tag hierarchy controls data access between (1) one or more ad decision system (ADS), ad management system (ADM), or ad placement opportunity information system (POIS) and (2) a subscriber information system (SIS); and wherein configuring the message handler conditionally reconfigures the targeting of the messages by the routing hub.
The digital advertising system manages and controls data access between different components in an advertising ecosystem, such as ad decision systems (ADS), ad management systems (ADM), ad placement opportunity information systems (POIS), and subscriber information systems (SIS). The system includes a processor, memory storing a policy file with a tag hierarchy, a message routing hub, a message handler, and a policy enforcement module. The routing hub directs digital messages between requesting and responding components, while the message handler processes these messages. The policy enforcement module reads the policy file and dynamically modifies messages based on its content, controlling data access between components. The policy file can include sections for adding, removing, replacing, or applying regular expressions to target codes within messages. The tag hierarchy in the policy file defines access rules between the various systems, ensuring proper data flow and targeting. By dynamically reconfiguring the message handler, the system adjusts how messages are routed and targeted, enabling flexible control over advertising data and operations.
2. The system of claim 1 , further comprising: a registration interface whereby the routing hub registers with the policy enforcement module to receive notification when the ADM, the ADS, or the POIS components make data access requests to the SIS; and the hub configured to utilize messages to and from the policy enforcement module to configure the data handler to modify the data access requests, responses to the data access requests, or both according to the tag hierarchy.
This invention relates to a system for managing data access in a distributed computing environment, particularly where data is tagged with hierarchical metadata to enforce access policies. The system addresses the challenge of ensuring secure and compliant data access across multiple components that interact with a shared information system (SIS). The system includes a routing hub that acts as an intermediary between data access components (ADM, ADS, POIS) and the SIS, enabling dynamic modification of data access requests and responses based on a predefined tag hierarchy. The routing hub registers with a policy enforcement module to receive notifications whenever any of the data access components (ADM, ADS, or POIS) make requests to the SIS. Upon receiving these notifications, the hub uses messages exchanged with the policy enforcement module to configure a data handler. This handler then modifies the data access requests, the responses to those requests, or both, according to the tag hierarchy. The system ensures that data access policies are consistently applied, even as requests traverse different components, by dynamically adjusting the data flow based on metadata tags. This approach enhances security and compliance by enforcing access controls at the data level, rather than relying solely on component-level permissions.
3. The system of claim 1 , wherein the policy enforcement module is internal to the routing hub.
A system for managing data traffic in a network environment includes a routing hub that processes and directs data packets between network nodes. The routing hub contains a policy enforcement module that applies predefined rules to control data flow, ensuring compliance with security, performance, or operational policies. The policy enforcement module is integrated within the routing hub, allowing for centralized and efficient policy application without external dependencies. This integration reduces latency and improves reliability by eliminating the need for external policy enforcement systems. The routing hub may also include a traffic analysis module that monitors data flow patterns to optimize routing decisions, and a security module that detects and mitigates threats. The system is designed to handle high-volume traffic while maintaining policy compliance, making it suitable for large-scale networks such as data centers or cloud infrastructures. The internal policy enforcement module ensures that policies are applied consistently and in real-time, enhancing overall network security and performance.
4. The system of claim 1 , wherein the policy enforcement module is external to the routing hub.
A system for managing network traffic routing and policy enforcement includes a routing hub that directs data packets between network nodes based on routing policies. The routing hub determines the optimal path for data transmission by evaluating network conditions, such as latency, bandwidth, and congestion, to ensure efficient and reliable data delivery. Additionally, the system incorporates a policy enforcement module that applies security and access control policies to the data packets before they are routed. This module verifies that the packets comply with predefined rules, such as authentication requirements, encryption standards, and data usage restrictions, before allowing them to proceed through the network. The policy enforcement module operates independently of the routing hub, meaning it is not integrated within the hub but functions as a separate component. This separation allows for modular design, enabling easier updates and maintenance of the policy enforcement rules without affecting the routing hub's operations. The system ensures secure and compliant data transmission by combining dynamic routing with external policy enforcement, improving network security and operational flexibility.
Unknown
September 29, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.